On the Security of a Secure and Lightweight Authentication Scheme for Next Generation IoT Infrastructure

Das, Ashok Kumar; Bera, Basudeb; Wazid, Mohammad; Jamal, Sajjad Shaukat

doi:10.1109/access.2021.3079312

Cited by 18 publications

(6 citation statements)

References 25 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In SEMS-5G, if steals the users' verifiers from the repository of CA, for instance HW u , the former will not be able to calculate mutually authenticated session key as constructed among the legal participants [49]. In our scheme, the calculation of session key SK must require access to Ui's smart card, shared secrets, and access to the private secret key of CA at the same time, which is based on the strong assumption of the capabilities related to the adversary [50].…”

Section: ) Resists Stolen Verifiers Attackmentioning

confidence: 99%

SEMS-5G: A Secure and Efficient Multi-Server Authentication Scheme for 5G Networks

Irshad,

Alreshoodi

2024

IEEE Access

View full text Add to dashboard Cite

The fifth-generation (5G) network is regarded as a key enabler technology for promoting the Internet of Things (IoT) and overcoming the corresponding challenges in the future, such as the support of low communication latency, high data rates, and managing numerous connections to devices in IoT-based ecosystem. To meet such requirements with the realization of 5G network technology as well as the qualification for cloud-based services, the resource deficient mobile end users must gain secure access to remote cloud computing servers. A robust multiserver authentication may ensure the stipulated computational efficiency for authenticated key agreements in 5G networks. Many Multi-Server Authentication (MSA) protocols have been presented so far for various applications. Yet, the compliance to perfect forward secrecy (PFS), untraceability, and privacy-based security features, along with the resilience to de-synchronization and other known attacks, is uncertain. Recently, Wu et al. presented another MSA scheme for a distributed cloud-based 5G environment. Although the scheme fulfills PFS; however, we identified that Wu et al. is prone to impersonation attack, password guessing attack, and man-in-the-middle attack. We have demonstrated an efficient and secure multiserver authentication protocol SEMS-5G ensuring PFS and all other significant security properties that previous schemes could not offer. The results of SEMS-5G are validated using automated ProVerif tool and formally analyzed using BAN logic analysis. The analysis and results prove that our scheme supports all security features at an economical cost.

show abstract

Section: ) Resists Stolen Verifiers Attackmentioning

confidence: 99%

SEMS-5G: A Secure and Efficient Multi-Server Authentication Scheme for 5G Networks

Irshad,

Alreshoodi

2024

IEEE Access

View full text Add to dashboard Cite

show abstract

“…The entire insecure public channel is completely under the control of attacker. We have used DY and CK threat model 29 in order to validate the proposed authentication and key agreement scheme. The proposed scheme is being compromised by the DY and CK threat model, which has complete control over insecure network traffic.…”

Section: Threat Modelmentioning

confidence: 99%

An efficient lightweight authentication scheme for dew‐assisted IoT networks

Verma,

Sohani

2023

Security and Privacy

View full text Add to dashboard Cite

SummaryThe dew computing is currently considered as one of the promising technology, due to its ability to give data access in the absence of internet. However, dew computing also brings new challenges, particularly security and privacy issues. In dew computing paradigm, authentication and key agreement pose substantial challenges that must be taken into account. In this context, the present work is to provide a secure authentication scheme for Internet of Things and dew server based on elliptic curve cryptography. Moreover, the performance evaluation of proposed scheme has been assessed in terms of communication and computation cost, which shows the proposed scheme outperforms than existing related schemes. The proposed scheme has also been compared with the related schemes in terms of various security features such as location privacy, anonymity, forward secrecy, mutual authentication, key agreement, forgery attack, replay attack, denial of service attack and replay attack. Furthermore, the formal security evaluation has been verified by automated validation internet security protocols and applications (AVISPA) under on‐the‐fly model‐checker (OFMC) and constraint logic based attack searcher (CL‐AtSE) backends. The OFMC backend analyzed 228 visited nodes with four plies using search time of 0.24 s. The CL‐AtSE analyzed three states with translation time of 0.12 s. The OFMC and CL‐AtSE backends have not identified any attack trace. Therefore, the simulation results demonstrate that the proposed scheme is safe against the security threats.

show abstract

“…• The adversary can completely control communications over public channels by interfering with, modifying, or deleting messages. • The adversary can conduct offline password guessing by dictionary attack within the polynomial time [30]. • The adversary can obtain session-specific temporary information, such as a random nonce generated in each session [31].…”

Section: E Threat Modelmentioning

confidence: 99%

A Secure and Anonymous User Authentication Scheme for IoT-Enabled Smart Home Environments Using PUF

Cho

Kwon

et al. 2022

IEEE Access

Self Cite

View full text Add to dashboard Cite

With the continuous development of Internet of Things (IoT) technology, research on smart home environments is being conducted by many researchers. In smart home environments, home users can remotely access and control a variety of home devices such as smart curtains, lights, and speakers placed throughout the house. Despite providing convenient services, including home monitoring, temperature management, and daily work assistance, smart homes can be vulnerable to malicious attacks because all messages are transmitted over insecure channels. Moreover, home devices can be a target for device capture attacks since they are placed in physically accessible locations. Therefore, a secure authentication and key agreement scheme is required to prevent such security problems. In 2021, Zou et al. proposed a two-factor-based authentication and key agreement scheme using elliptic curve cryptography (ECC) in smart home environments. They claimed that their scheme provides user anonymity and forward secrecy. However, we prove that their scheme suffers from forgery, ephemeral secret leakage, and session key disclosure attacks. To overcome the security vulnerabilities of Zou et al.'s scheme and provide home users with secure communication in smart home environments, we propose a secure user authentication scheme using physical unclonable functions (PUF). We utilize Real-or-Random (ROR) model and Burrows-Abadi-Needham (BAN) logic to verify the session key security and mutual authentication of the proposed scheme, respectively. Furthermore, we use the Automated Validation of Internet Security Protocols and Applications (AVISPA) tool to simulate the resistance of our scheme to security attacks. After that, we analyze and compare the communication costs, computational consumption, and security functionalities along with related schemes.

show abstract

On the Security of a Secure and Lightweight Authentication Scheme for Next Generation IoT Infrastructure

Cited by 18 publications

References 25 publications

SEMS-5G: A Secure and Efficient Multi-Server Authentication Scheme for 5G Networks

SEMS-5G: A Secure and Efficient Multi-Server Authentication Scheme for 5G Networks

An efficient lightweight authentication scheme for dew‐assisted IoT networks

A Secure and Anonymous User Authentication Scheme for IoT-Enabled Smart Home Environments Using PUF

Contact Info

Product

Resources

About